troubleshooting Question

Router Access List for inter Vlan security

Avatar of thepilo
thepilo asked on
NetworkingNetworking ProtocolsNetwork Operations
11 Comments1 Solution965 ViewsLast Modified:
I need to create a vlan that can access the internet and only select internal servers.  The vlan ip scheme is 10.1.53.0 and the servers are on the 10.1.100.0 vlan

This is what I have.   I can access the server that I have, but I can'nt access the internet.  any ideas?

access-list 120 deny   ip 10.1.53.0 0.0.0.255 host 10.0.0.0
access-list 120 permit udp 10.1.53.0 0.0.0.255 host 10.1.100.29 eq bootps
access-list 120 permit udp 10.1.53.0 0.0.0.255 host 10.1.100.29 eq domain
access-list 120 permit tcp 10.1.53.0 0.0.0.255 host 10.1.100.51 eq www
access-list 120 permit tcp 10.1.53.0 0.0.0.255 host 10.1.100.220 eq 445
access-list 120 permit udp 10.1.53.0 0.0.0.255 host 10.1.100.220 eq 445
ASKER CERTIFIED SOLUTION
WGhen

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 11 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 11 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros